Bundestag President Klöckner recommends MPs switch to BSI-certified Wire, citing email-only registration as the core anti-phishing architecture over Signal.
Key Takeaways
Wire Bund just received BSI VS-NfD approval for sensitive-but-unclassified government data; valid through end of 2028, pending post-quantum encryption additions.
Email-only registration with the address hidden from third parties is the explicit security argument: it removes phone number as a phishing attack surface.
CDU/CSU is pushing a full Signal ban; security experts reject blanket bans as a misread of how modern communication threats actually work.
Post-quantum methods are still absent from Wire Bund, which is why the BSI approval carries a hard 2028 expiry rather than being indefinite.
Phishing via guessable official parliamentary email addresses remains a live attack vector even with Wire, acknowledged in the source itself.
Hacker News Comment Review
The dominant thread argues the switch trades one vendor lock-in for another: Signal is a closed US non-profit silo, Wire is a closed German/Swiss for-profit silo, while Matrix already provides a genuinely open multi-vendor standard with several European commercial deployments in production.
Wire’s server-side media storage is flagged as a concrete regression from Signal: backups exclude media files, meaning chat history portability is worse in practice despite the registration UX advantage.
Commenters with direct BSI deployment experience note the infrastructure requirements were serious: airgapped full-stack delivery was a hard constraint, not a nice-to-have.
Notable Comments
@arianvanp: Built the original Wire-BSI deployment 7 years ago; describes airgapped delivery via Nix package closures to spin up the entire server stack at the Bundeskanzleramt.
@Arathorn: “jumping from the frying pan into the fire” – argues Matrix with vendors like Element, Famedly, and connect2x is the genuine open-standard path the rest of Europe is already on.
